Share this Job

IAM Operations Lead

Date: Jul 16, 2021

Location: Watford, United Kingdom

Company: KPMG UK

Roles and Responsibilities

This role will lead Identity & Access Management team (IAM) within the KPMG UK Information Security function. The IAM team are critical in the definition, administration and tracking of access to system and information for the firm. In doing so the IAM team demonstrates that KPMG implements and maintains secure access to critical, sensitive information to build trust with our business stakeholders, our clients and our regulators.

The Identity and Access Management team provides

robust controls, traceable processes and enabling tools for end-to-end lifecycle management of access. These processes extend from the initial request for creation of identity and initial access, to change and re-certification of access to removal of access and deletion of identity. The typical functionalities are

Identity Management for user repositories, request provisioning, privileged access, user services, federated access management, Single Sign-On (SSO), API security, and facility security and access control. The role is to provide the Governance structure and assurance, with responsibility for delivery by a separate team.

Qualifications and Skills

- Develop the service, using automation, digitisation, security by design and a customer focussed approach as appropriate, and formulate a service strategy and roadmap for IAM within the agreed budget;

- Understand the dependencies & work collaboratively with aligned services & stakeholders such as Data Privacy, Technology and Risk & Legal to provide a consistent and reliable service & approach;

- Be responsible for overseeing the overall IAM programme, ensuring the the smooth handover of deliverables into business as usual;

- Maintain good relationships with customer groups and ensure customer satisfaction, by monitoring quality & escalating issues as necessary;

- Take accountability for the IAM service and oversee the delivery and quality of the service by your team, other KPMG teams and third parties;

- Lead and manage a team of circa 10 high performing professionals in delivering the IAM service;

- Provide opportunities and training to develop the skills needed to meet the future needs of the service;

- Be accountable for ensuring service documentation, such as process guides, are maintained and kept up to date;

- Be accountable for lifecycle ownership of in-scope technology that supports the IAM service;

- Be an active member of the Security Operations Leadership, relevant programme steering groups and other governance bodies as appropriate;

- Be responsible for providing reporting to leadership and other service stakeholders on service performance (against KPIs) and vulnerability risk exposure (against KRIs);

- Be responsible for inputting to and reviewing information security policy and standards related to IAM Service delivery;

- Be responsible for attending and supporting internal and external audits from an IAM service perspective;

- Work towards and achieve or extend professional certifications as part of personal development;

- Share experiences with others to assist their learning and understanding;

Single point of contact for IAM escalations and concerns.

Experience and Background
- Extended experience in a similar operational role within complex and risk averse environments;

- Operational background in IAM service delivery utilising at least two of Sailpoint, CyberArk and ServiceNow;

- In-depth knowledge of the IAM service delivery model;

- Strong understanding of the SailPoint Connector framework, Authentication methods and key IAM technologies and trends;

- Experience with the integration of SSO with externally hosted vendor applications;

- Experience managing third party service delivery teams and remote teams.

It would be advantageous if you can demonstrate some, or all of the following:

- Excellent Stakeholder management with the ability to influence key stakeholders across the organisation;

- Experience in setting developing governance processes and plans to monitor and maintain service quality levels;

- Strong leadership qualities with focus on continually increasing the value of delivery;

- Ability to work in diverse and multicultural teams and to lead by example;

- Experience of working in a Professional Services environment;

- Knowledge/experience of one or more of the following would be advantageous:

AWS, Azure, Okta, Idaptive,


Seamless integrated login (e.g. Windows Integrated Authentication)

Federated login using protocols such as SAML2 and OAuth2

Multi-factor authentication

Cloud technologies, AD, SAP


Job Segment: Operations Manager, ERP, SAP, Information Security, Operations, Technology